Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/03e_iSf06c52tIDaAZ7WHKymxvk.roa
File: 03e_iSf06c52tIDaAZ7WHKymxvk.roa (raw, json)
Hash identifier: 1gNBfZMG2XOhyWiv0Y/GWQXgq37+O/umkx0qkl5qPEM=
Subject key identifier: D3:77:BF:89:27:F4:E9:CE:76:B4:80:DA:01:9E:D6:1C:AC:A6:C6:F9
Certificate issuer: /CN=a0639adf1e0b84b9ff64e4f8ebe638ebbf5d27b9
Certificate serial: 01856C9CDCD0A64214042F330D6DF3BA3304
Authority key identifier: A0:63:9A:DF:1E:0B:84:B9:FF:64:E4:F8:EB:E6:38:EB:BF:5D:27:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oGOa3x4LhLn_ZOT46-Y4679dJ7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/03e_iSf06c52tIDaAZ7WHKymxvk.roa
Signing time: Sun 01 Jan 2023 09:14:57 +0000
ROA not before: Sun 01 Jan 2023 09:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47297
IP address blocks: 185.124.226.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:dc:d0:a6:42:14:04:2f:33:0d:6d:f3:ba:33:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0639adf1e0b84b9ff64e4f8ebe638ebbf5d27b9
Validity
Not Before: Jan 1 09:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d377bf8927f4e9ce76b480da019ed61caca6c6f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b2:c9:09:25:d8:ff:de:0b:b6:61:4a:34:54:
57:d8:a4:1d:2f:13:7c:53:cf:2e:8c:b6:24:58:73:
81:e0:bf:82:90:98:71:fe:6e:8b:9d:f8:1e:ff:b2:
0b:b0:b6:52:1f:2a:1b:da:e4:b0:33:cc:86:d3:84:
6c:1a:87:dd:07:84:e3:79:da:31:be:47:5a:24:2a:
31:aa:3b:66:b6:ab:9c:e7:29:ad:10:0d:23:40:3a:
1a:b0:c4:1c:c8:db:4f:f4:cd:d9:08:99:c7:22:a9:
a3:65:19:ec:e0:9a:f6:fa:c9:58:2f:79:02:2a:e2:
09:9b:71:25:f3:d5:6c:70:c6:ca:56:b6:bb:22:fb:
57:79:cf:78:bb:bd:99:f1:7f:b3:42:0f:8c:e1:63:
8a:7f:91:d5:9d:31:b6:45:7b:95:43:4e:fe:36:cf:
7d:13:1a:86:20:49:96:5e:40:a1:21:2a:8a:94:5e:
b7:c9:27:ab:af:1b:fc:6b:9d:52:84:6c:e3:16:ac:
52:9c:ec:07:1d:e7:30:fa:66:33:8c:4f:30:3c:41:
e2:b8:d6:79:8a:11:84:0b:f8:0f:b1:83:0f:7f:fa:
d7:70:b9:7b:d9:a2:46:1f:63:f8:e4:dd:a4:3d:e7:
83:dc:22:7e:8f:30:16:4f:e5:b1:03:f1:82:bb:5b:
1c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:77:BF:89:27:F4:E9:CE:76:B4:80:DA:01:9E:D6:1C:AC:A6:C6:F9
X509v3 Authority Key Identifier:
keyid:A0:63:9A:DF:1E:0B:84:B9:FF:64:E4:F8:EB:E6:38:EB:BF:5D:27:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oGOa3x4LhLn_ZOT46-Y4679dJ7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/03e_iSf06c52tIDaAZ7WHKymxvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0c363c-2d0e-4bca-a9f2-813c5aab783e/1/oGOa3x4LhLn_ZOT46-Y4679dJ7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.226.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:84:0c:9b:c3:66:0d:57:93:b5:b9:e5:58:5a:12:b0:3f:de:
b8:90:aa:7b:91:eb:9b:a9:58:a3:87:66:85:a1:39:eb:d3:db:
f1:c0:7e:d7:c6:f9:fa:f5:22:7a:ff:1e:89:4c:2c:73:bd:57:
70:14:d4:b3:f5:31:89:85:a9:77:c9:4a:77:bb:57:d4:db:d5:
39:3e:e6:c1:d9:a5:ab:4f:ad:ae:47:c3:e2:a2:48:c1:fd:ad:
f8:c0:80:7b:7b:49:67:0e:94:03:df:54:99:b1:b9:0d:03:d3:
c9:65:81:cb:6b:ad:3c:69:e8:b4:48:1b:6c:a6:9d:c3:2f:cc:
18:b1:77:1e:e6:dd:3e:5c:d9:30:dd:97:9c:f8:3e:47:b1:17:
13:93:f8:00:08:36:27:0e:5e:fb:52:a0:45:d6:79:43:88:1a:
55:35:ff:85:df:48:d8:40:33:36:9c:8d:20:e7:33:bd:ac:6b:
70:6c:c3:86:e7:f0:31:cb:8d:d7:63:f1:35:44:f1:fc:43:7a:
d4:fa:31:a2:59:f6:08:3a:fe:38:b9:d1:9e:ed:37:87:ff:73:
05:4b:4c:de:e0:d9:19:6b:e4:0c:e6:97:86:31:f8:ec:3b:83:
5a:3f:49:de:f1:60:56:cd:49:4a:c0:50:58:cf:6c:a1:08:94:
f6:38:a0:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:49 2024 by rpki-client on console-fra.rpki-client.org